---
title: "Maritime Cybersecurity Policies, Amazon Phishing Alert, Red Sea Spoofing | DMARC Report"
description: "Maritime Cybersecurity Policies, Amazon Phishing Alert, Red Sea Spoofing from DMARC Report explains practical steps for email authentication, domain."
image: "https://dmarcreport.com/og/blog/maritime-cybersecurity-policies-amazon-phishing-alert-red-sea-spoofing.png"
canonical: "https://dmarcreport.com/blog/maritime-cybersecurity-policies-amazon-phishing-alert-red-sea-spoofing/"
---
Quick Answer
\_According to the FBI's 2022 Internet Crime Report (IC3), 300,497 US-based victims reported phishing incidents in a single year, and Business Email Compromise (BEC) caused more than $2.7 billion in direct losses. DMARC Report Maritime Cybersecurity Policies, Amazon Phishing Alert, Red Sea Spoofing
Related: [Free DMARC Checker](/tools/dmarc-checker/) ·[How to Create an SPF Record](/tools/spf-record-generator/) ·[SPF Record Format](/blog/spf-format-checker-dos-and-donts-for-email-authentication/)
Share
[ ](https://www.linkedin.com/sharing/share-offsite/?url=undefined%2Fblog%2Fmaritime-cybersecurity-policies-amazon-phishing-alert-red-sea-spoofing%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Maritime%20Cybersecurity%20Policies%2C%20Amazon%20Phishing%20Alert%2C%20Red%20Sea%20Spoofing&url=undefined%2Fblog%2Fmaritime-cybersecurity-policies-amazon-phishing-alert-red-sea-spoofing%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=undefined%2Fblog%2Fmaritime-cybersecurity-policies-amazon-phishing-alert-red-sea-spoofing%2F "Share on Facebook") [ ](https://reddit.com/submit?url=undefined%2Fblog%2Fmaritime-cybersecurity-policies-amazon-phishing-alert-red-sea-spoofing%2F&title=Maritime%20Cybersecurity%20Policies%2C%20Amazon%20Phishing%20Alert%2C%20Red%20Sea%20Spoofing "Share on Reddit") [ ](mailto:?subject=Maritime%20Cybersecurity%20Policies%2C%20Amazon%20Phishing%20Alert%2C%20Red%20Sea%20Spoofing&body=Check out this article: undefined%2Fblog%2Fmaritime-cybersecurity-policies-amazon-phishing-alert-red-sea-spoofing%2F "Share via Email")
> Domain spoofing is trivially easy without DMARC enforcement, says Brad Slavin, General Manager of DuoCircle. Anyone can send email that looks like it comes from your domain. DMARC with p=reject is the only way to tell receiving servers to block unauthorized senders completely.
\_According to the [FBI’s 2022 Internet Crime Report (IC3)](https://www.ic3.gov/Media/PDF/AnnualReport/2022IC3Report.pdf), 300,497 US-based victims reported phishing incidents in a single year, and Business Email Compromise (BEC) caused more than $2.7 billion in direct losses. DMARC Report
Maritime Cybersecurity Policies, Amazon Phishing Alert, Red Sea Spoofing
```
```
/
```
```
RSS Feed
```
Share
Link
Embed
```
/\*! This file is auto-generated \*/ ’ title=“Embed Code” class=“input-embed input-embed-29981” readonly/>
```
```
Is time passing **really quickly since 2020**, or are the cyberattackers getting super swift with every move of theirs?
Every week, we bring you a fresh dose of cyber bulletin, comprising global cybersecurity news. Every edition encourages you to learn more about prevalent cyber threats and \*\*secure yourself \*\*from potential cyberattacks. This is the 4th week of July, and we are back again with another edition of cyber news.
This week, our focus will be on new [cybersecurity](https://dmarcreport.com/blog/major-cybersecurity-trends-that-will-reign-in-2024/) protocols designed for maritime safety. Additionally, we will analyze the threats surrounding Amazon Prime members. Lastly, the sudden surge in the Red Sea GPS instance will also be highlighted. Read on to know the details!
## Coast Guard issues cybersecurity policies to ensure maritime safety
New cybersecurity rules have been introduced to **bolster maritime safety**. The new set of policies (Cybersecurity in Marine Transportation System) is applicable to [Outer Continental Shelf (OCS)](https://en.wikipedia.org/wiki/Outer%5FContinental%5FShelf) facilities, US-flagged vessels, and all facilities that come under [Maritime Transportation Security Act of 2002 (MTSA)](https://www.cargoz.com/glossary/maritime-transportation-security-act-mtsa-1245).
Cybersecurity threats are emerging as a major concern for **US ports**. That’s precisely why the [Coast Guard](https://industrialcyber.co/transport/us-coast-guard-unveils-cybersecurity-faqs-for-mtsa-regulated-facilities-and-vessels/) is introducing MTS to combat the dangers associated with “increased interconnectivity and digitization of the MTS.” The newly designed policies will address both existing and emerging cybersecurity threats. They will also help to identify and respond to [threat attacks](https://www.aljazeera.com/news/2025/3/17/houthis-claim-retaliatory-attack-on-us-ships) without wasting any time.
The following are some of the different rules added to the MTS to strengthen **maritime security**:
- Changing passwords before carrying out any operational technology systems
- Deploying a [multifactor authentication](https://www.onelogin.com/learn/what-is-mfa) system
- Using different user credentials on crucial [OT and IT systems](https://www.windriver.com/solutions/learning/it-and-ot)
- Revoking or removing user credentials when a team member or employee leaves the organization for good
## Amazon warns Prime members against potential phishing attempts
If you are an **Amazon Prime member**, you can be the next target of phishing actors. A new phishing scam is doing the rounds, where [cybercriminals](https://incyber.org/en/article/united-states-amounts-stolen-by-cybercriminals-up-33/) are impersonating Amazon to gain access to the sensitive data of Prime members. This data can include your [Social Security Number](https://www.allvoices.co/glossary/social-security-number-ssn), bank details, or even [login credentials](https://hackread.com/hackers-fake-microsoft-adfs-login-pages-steal-credentials/).
Amazon has informed that last month, it took down around **55,000** [phishing websites](https://www.infosecurity-magazine.com/news/threat-actors-exploit-gov-websites/), as well as 12,000 fake phone numbers, using which the impersonation scam was being carried out. It has been reported that a significant increase in [impersonation scams](https://www.wusa9.com/article/news/crime/scam-alert-fraudsters-posing-as-detectives-to-get-money-from-dc-residents/65-95ac9ff6-e39b-4dd4-909d-5898afb1d306) has been observed, where threat actors send [malicious emails](https://www.bleepingcomputer.com/news/microsoft/microsoft-exchange-online-mistakenly-tags-emails-as-malware/) or text messages to Prime members. Amazon is currently working on \*\*consumer protection against such impersonation threats and educating Prime members on how to avoid such scams.
Cybersecurity experts stress the critical role of [DMARC](https://dmarcreport.com/), [DKIM](https://dmarcreport.com/what-is-dkim/), and [SPF](https://autospf.com/blog/spf-guide-understanding-sender-policy-framework/) protocols in safeguarding email systems from phishing, spoofing, and domain impersonation attacks
\_The scammers often use emails, calls, or texts to confuse the member about a purchase they don’t really remember. \_The [cybercrooks](https://wtop.com/local/2025/04/cyber-crooks-scam-dc-md-and-va-out-of-848-million-in-2024/) coax the users to “verify” the order details by clicking on a specific link or sharing personal information . Some emails may also contain messages about renewed high prices. They add a fake “cancel subscription” button, clicking on which the Prime member will be directed to a [malicious Amazon](https://www.darkreading.com/cyberattacks-data-breaches/phishing-campaign-malicious-amazon-pdfs) login page.
Amazon will soon launch measures to safeguard users against such scams. One of the crucial changes is to include the **Amazon Smile logo**, which will help Yahoo, Gmail, and other email service users determine the authenticity of emails. Amazon also emphasized that no Amazon representative will ever ask for payment over email or by phone call.
## Steep rise in Red Sea GPS spoofing as crews seek immediate support
Ships that sail through the Red Sea are consistently being targeted by cybercrooks through [GPS spoofing and jamming attacks](https://spacenews.com/america-risk-high-impact-gps-jamming-spoofing-from-space/). This makes it incredibly difficult for \*\*sailors to navigate across the Red Sea. These attacks can even render it impossible for the crew to send out distress signals in emergencies.
Marlink, the satellite communication provider, has experienced a significant increase in support requests from ships sailing across the Red Sea. In 2024, the distress calls were as few as one every two weeks. However, currently, as many as [150 ](https://www.marineinsight.com/shipping-news/red-sea-gps-spoofing-sees-a-sharp-rise-ship-crews-seek-urgent-support/)ships connect with Marlink in a single day to report irregularities in **GPS services**.
Due to these [spoofing attacks](https://www.msspalert.com/brief/novel-usps-spoofing-phishing-attack-relies-on-malicious-pdfs), ships are often compelled to travel at an abnormal speed. Sometimes they appear to be on land. At other times, they appear to be circling around sensitive locations . Experts believe these are clear indications of radio frequency [cyberattacks](https://www.insurancebusinessmag.com/us/news/breaking-news/washington-post-investigates-email-breach-after-cyberattack-539234.aspx).
The cybercrooks not only disrupt the navigation of a ship but also affect \*\*crucial safety features \*\*such as GMDSS or [Global Maritime Distress and Safety System](https://en.wikipedia.org/wiki/Global%5FMaritime%5FDistress%5Fand%5FSafety%5FSystem). If this system is spoofed or jammed, then crew members won’t be able to send even SOS calls in distressful situations.
Marlink is attempting to mitigate the issue by providing a \*\*dedicated call support system for affected crew members. Meanwhile, their engineering division is trying to build a robust, **anti-spoof solution**.
## Topics
[ dkim ](/tags/dkim/)[ DMARC ](/tags/dmarc/)[ News ](/tags/news/)[ SPF ](/tags/spf/)
[ Vasile Diaconu ](/authors/vasile-diaconu/)
Operations Lead
Operations Lead at DuoCircle. Runs project management, developer coordination, and technical support execution for DMARC Report.
[LinkedIn Profile →](https://www.linkedin.com/in/vasile-diaconu/)
## Take control of your DMARC reports
Turn raw XML into actionable dashboards. Start free - no credit card required.
[Start Free Trial](https://app.dmarcreport.com/) [Check Your DMARC Record](/tools/dmarc-checker/)
## Related Articles
[ Foundational 4m Adidas Data Breach, Whatsapp Image Threat, Silent Ransom Vishing May 29, 2025 ](/blog/adidas-data-breach-whatsapp-image-threat-silent-ransom-vishing/)[ Foundational 4m Africa Fights Cybercrime, Attention Farmers Customers, Apple Prevents Threats Aug 28, 2025 ](/blog/africa-fights-cybercrime-attention-farmers-customers-apple-prevents-threats/)[ Foundational 4m AI Scam Alert, Federal Cuts Vulnerability, American Tire Cyberattack Sep 9, 2025 ](/blog/ai-scam-alert-federal-cuts-vulnerability-american-tire-cyberattack/)[ Foundational 4m Akira flaunts victims, Idaho targets orthodontist, AI granny protects Nov 22, 2024 ](/blog/akira-flaunts-victims-idaho-targets-orthodontist-ai-granny-protects/)
```json
{"@context":"https://schema.org","@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138898167","https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.g2.com/products/dmarc-report/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc","https://www.trustradius.com/products/duocircle/reviews"],"aggregateRating":{"@type":"AggregateRating","ratingValue":"4.8","reviewCount":"470","bestRating":"5","worstRating":"1","url":"https://www.g2.com/products/dmarc-report/reviews"},"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://dmarcreport.com/support/"},"knowsAbout":["DMARC","DMARC Reporting","DMARC Aggregate Reports","DMARC Forensic Reports","Sender Policy Framework","DKIM","Email Authentication","Email Security","DNS Management","Email Deliverability"]}
```
```json
{"@context":"https://schema.org","@type":"WebSite","name":"DMARC Report","url":"https://dmarcreport.com","description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","publisher":{"@type":"Organization","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```
```json
[{"@context":"https://schema.org","@type":"BlogPosting","headline":"Maritime Cybersecurity Policies, Amazon Phishing Alert, Red Sea Spoofing","description":"Maritime Cybersecurity Policies, Amazon Phishing Alert, Red Sea Spoofing from DMARC Report explains practical steps for email authentication, domain.","url":"https://dmarcreport.com/blog/maritime-cybersecurity-policies-amazon-phishing-alert-red-sea-spoofing/","datePublished":"2025-07-25T12:30:47.000Z","dateModified":"2026-04-16T15:53:43.000Z","dateCreated":"2025-07-25T12:30:47.000Z","author":{"@type":"Person","@id":"https://dmarcreport.com/authors/vasile-diaconu/#person","name":"Vasile Diaconu","url":"https://dmarcreport.com/authors/vasile-diaconu/","jobTitle":"Operations Lead","description":"Vasile Diaconu is the Operations Lead at DuoCircle, the company behind DMARC Report and AutoSPF. He coordinates between engineering, product, and technical support - running project management, interfacing with developers on customer-reported issues, and making sure work that comes in through the support channel actually gets closed out. Vasile sits at the intersection of customer feedback and engineering execution, giving him a direct view of which email authentication problems customers hit most often in production.","image":"https://media.mailhop.org/dmarcreport/images/team/vasile-diaconu.jpg","knowsAbout":["SaaS Operations","Technical Support Coordination","Customer Issue Resolution","Engineering Program Management","Deployment Operations"],"worksFor":{"@type":"Organization","name":"DMARC Report","url":"https://dmarcreport.com"},"sameAs":["https://www.linkedin.com/in/vasile-diaconu/"]},"publisher":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com","logo":{"@type":"ImageObject","url":"https://dmarcreport.com/images/dmarcreport-logo.png"},"description":"DMARC reporting and email authentication management. Monitor aggregate and forensic DMARC reports, analyze authentication results, and enforce DMARC policies across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138898167","https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.g2.com/products/dmarc-report/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc","https://www.trustradius.com/products/duocircle/reviews"],"aggregateRating":{"@type":"AggregateRating","ratingValue":"4.8","reviewCount":"470","bestRating":"5","worstRating":"1","url":"https://www.g2.com/products/dmarc-report/reviews"},"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://dmarcreport.com/support/"},"knowsAbout":["DMARC","DMARC Reporting","DMARC Aggregate Reports","DMARC Forensic Reports","Sender Policy Framework","DKIM","Email Authentication","Email Security","DNS Management","Email Deliverability"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://dmarcreport.com/blog/maritime-cybersecurity-policies-amazon-phishing-alert-red-sea-spoofing/"},"articleSection":"foundational","keywords":"dkim, DMARC, News, SPF","wordCount":1162,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/dmarcreport/images/2022/04/dmarc-alignment-6379.jpg","caption":"Maritime Cybersecurity Policies, Amazon Phishing Alert, Red Sea Spoofing","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}]
```
```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://dmarcreport.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://dmarcreport.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://dmarcreport.com/foundational/"},{"@type":"ListItem","position":4,"name":"Maritime Cybersecurity Policies, Amazon Phishing Alert, Red Sea Spoofing","item":"https://dmarcreport.com/blog/maritime-cybersecurity-policies-amazon-phishing-alert-red-sea-spoofing/"}]}
```